[jboss-jira] [JBoss JIRA] (WFLY-3686) "Invalid keystore format" IOException when using PKCS12 keystore in Wildfly 8.1.0.Final

Darran Lofthouse (JIRA) issues at jboss.org
Tue Jul 29 06:24:30 EDT 2014 

     [ https://issues.jboss.org/browse/WFLY-3686?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Darran Lofthouse resolved WFLY-3686.
------------------------------------

    Fix Version/s: 8.2.0.CR1
       Resolution: Rejected


For configuration issues please also consult the schemas included in the distribution, in this case you need to add a 'provider' attribute to the keystore element - this defaults to JKS.

> "Invalid keystore format" IOException when using PKCS12 keystore in Wildfly 8.1.0.Final
> ---------------------------------------------------------------------------------------
>
>                 Key: WFLY-3686
>                 URL: https://issues.jboss.org/browse/WFLY-3686
>             Project: WildFly
>          Issue Type: Bug
>      Security Level: Public(Everyone can see) 
>          Components: Security
>    Affects Versions: 8.1.0.Final
>            Reporter: Lars Michaelis
>            Assignee: Darran Lofthouse
>             Fix For: 8.2.0.CR1
>
>
> Up to now I am using a JKS file to activate SSL. 
> This works
> {code}<server-identities>
>     <ssl protocol="TLS">
>         <keystore path="mykeystore.jks" relative-to="jboss.server.config.dir" keystore-password="xxx"/>
>     </ssl>
> </server-identities>{code}
> This does not work:
> {code}<server-identities>
>     <ssl protocol="TLS">
>         <keystore path="keystore.p12" relative-to="jboss.server.config.dir" keystore-password="xxx"/>
>     </ssl>
> </server-identities>{code}
> Exception is
> {code}Caused by: java.io.IOException: Invalid keystore format
> 	at sun.security.provider.JavaKeyStore.engineLoad(JavaKeyStore.java:650) [rt.jar:1.7.0_55]
> 	at sun.security.provider.JavaKeyStore$JKS.engineLoad(JavaKeyStore.java:55) [rt.jar:1.7.0_55]
> 	at java.security.KeyStore.load(KeyStore.java:1214) [rt.jar:1.7.0_55]
> 	at org.jboss.as.domain.management.security.FileKeystore.load(FileKeystore.java:113)
> 	... 6 more{code}
> WFLY-2229 says PKCS12 is supported. I found no way to specify a keystore format in documentation (https://docs.jboss.org/author/display/WFLY8/Detailed+Configuration) . Is it correct?



--
This message was sent by Atlassian JIRA
(v6.2.6#6264)

More information about the jboss-jira mailing list